Alternatives and similar repositories for sonar

Users that are interested in sonar are comparing it to the libraries listed below

• sw33tLie / sns
  IIS shortname scanner written in Go
  ☆349Updated 2 years ago
• godfuzz3r / burp-ununicode
  "de-unicode" unicode escaped sequenses
  ☆23Updated 6 months ago
• MayankPandey01 / Sparty-2.0
  An MS Sharepoint and Frontpage Auditing Tool
  ☆57Updated last year
• sorokinpf / sqli_blinder
  Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.
  ☆29Updated 3 years ago
• d3k4z / burp-copy-as-ffuf
  Burp Extension that copies a request and builds a FFUF skeleton
  ☆112Updated 2 years ago
• putsi / privatecollaborator
  A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
  ☆210Updated last year
• forcesunseen / graphquail
  Burp Suite extension that offers a toolkit for testing GraphQL endpoints.
  ☆199Updated last year
• WhiteOakSecurity / Dynamic-DTD
  A python Flask app that generates dynamic DTDs for easy out-of-band data exfiltration.
  ☆30Updated 3 years ago
• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆128Updated 6 years ago
• ambionics / symfony-exploits
  Exploits targeting Symfony
  ☆210Updated last year
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆54Updated 3 years ago
• s0j0hn / AWAE-OSWE-Prep
  ☆132Updated 4 years ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆228Updated last year
• neex / 1u.ms
  ☆185Updated 6 months ago
• wallarm / jwt-heartbreaker
  The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources
  ☆136Updated 5 years ago
• dinosn / synackDUO
  Python Duo Push API
  ☆41Updated 6 months ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆125Updated 2 years ago
• Syzik / DockerRegistryGrabber
  Enumerate / Dump Docker Registry
  ☆180Updated last year
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆157Updated last year
• computer-engineer / WhiteboxPentest
  Whitebox source code review cheatsheet (Based on AWAE syllabus)
  ☆164Updated 3 years ago
• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆186Updated 3 years ago
• bmdyy / tudo
  TUDO - A vulnerable PHP Web Application
  ☆123Updated 2 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆129Updated 4 years ago
• ArturSS7 / TukTuk
  Tool for catching and logging different types of requests.
  ☆220Updated 5 years ago
• doyensec / GQLSpection
  GQLSpection - parses GraphQL introspection schema and generates possible queries
  ☆97Updated 9 months ago
• rayhan0x01 / nodejs-websocket-sqli
  A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection
  ☆71Updated 4 years ago
• kunte0 / phar-jpg-polyglot
  Phar + JPG Polyglot generator and playground (CTF CODE)
  ☆94Updated 7 years ago
• FWDSEC / burp-auto-gql
  A plugin for Burp Suite Pro that uses the GraphQL schema to begin Active Scanning the entire endpoint.
  ☆41Updated last month
• wdahlenburg / VhostFinder
  Identify virtual hosts by similarity comparison
  ☆134Updated last year
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆132Updated 4 years ago